diff --git a/root/etc/opensnitchd/rules/0 - Global Allow.json b/root/etc/opensnitchd/rules/0 - Global Allow.json new file mode 100644 index 0000000..65a8189 --- /dev/null +++ b/root/etc/opensnitchd/rules/0 - Global Allow.json @@ -0,0 +1,16 @@ +{ + "created": "2021-03-26T14:38:21.237148571+01:00", + "updated": "2021-03-26T14:38:21.237217606+01:00", + "name": "0 - Global Allow", + "enabled": false, + "precedence": true, + "action": "allow", + "duration": "always", + "operator": { + "type": "regexp", + "operand": "process.path", + "sensitive": false, + "data": ".*", + "list": [] + } +} \ No newline at end of file diff --git a/root/etc/opensnitchd/rules/1-Localhost.json b/root/etc/opensnitchd/rules/1 - Local Network 1: Loopback IPv4.json similarity index 59% rename from root/etc/opensnitchd/rules/1-Localhost.json rename to root/etc/opensnitchd/rules/1 - Local Network 1: Loopback IPv4.json index e6c6585..dacd577 100644 --- a/root/etc/opensnitchd/rules/1-Localhost.json +++ b/root/etc/opensnitchd/rules/1 - Local Network 1: Loopback IPv4.json @@ -1,7 +1,7 @@ { - "created": "2021-02-14T10:43:07.677514842+01:00", - "updated": "2021-02-14T10:43:07.6775511+01:00", - "name": "1-Localhost", + "created": "2021-03-26T14:34:29.750639149+01:00", + "updated": "2021-03-26T14:34:29.750717553+01:00", + "name": "1 - Local Network 1: Loopback IPv4", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/1-Localhost (v6).json b/root/etc/opensnitchd/rules/1 - Local Network 1: Loopback IPv6.json similarity index 59% rename from root/etc/opensnitchd/rules/1-Localhost (v6).json rename to root/etc/opensnitchd/rules/1 - Local Network 1: Loopback IPv6.json index 0eb8a92..d76f133 100644 --- a/root/etc/opensnitchd/rules/1-Localhost (v6).json +++ b/root/etc/opensnitchd/rules/1 - Local Network 1: Loopback IPv6.json @@ -1,7 +1,7 @@ { - "created": "2021-02-14T17:48:04.098124196+01:00", - "updated": "2021-02-14T17:48:04.098183755+01:00", - "name": "1-Localhost (v6)", + "created": "2021-03-26T14:35:06.471042752+01:00", + "updated": "2021-03-26T14:35:06.471104722+01:00", + "name": "1 - Local Network 1: Loopback IPv6", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/1-Local Network.json b/root/etc/opensnitchd/rules/1 - Local Network 2: IPv4.json similarity index 54% rename from root/etc/opensnitchd/rules/1-Local Network.json rename to root/etc/opensnitchd/rules/1 - Local Network 2: IPv4.json index 3b143dd..48e150d 100644 --- a/root/etc/opensnitchd/rules/1-Local Network.json +++ b/root/etc/opensnitchd/rules/1 - Local Network 2: IPv4.json @@ -1,7 +1,7 @@ { - "created": "2021-02-14T10:42:12.050595111+01:00", - "updated": "2021-02-14T10:42:12.050628273+01:00", - "name": "1-Local Network", + "created": "2021-03-26T13:55:13.918975568+01:00", + "updated": "2021-03-26T13:55:13.919048389+01:00", + "name": "1 - Local Network 2: IPv4", "enabled": true, "precedence": false, "action": "allow", @@ -10,7 +10,7 @@ "type": "network", "operand": "dest.network", "sensitive": false, - "data": "192.168.0.0/16", + "data": "192.0.0.0/8", "list": [] } } \ No newline at end of file diff --git a/root/etc/opensnitchd/rules/1-Local Network (v6).json b/root/etc/opensnitchd/rules/1 - Local Network 2: IPv6.json similarity index 61% rename from root/etc/opensnitchd/rules/1-Local Network (v6).json rename to root/etc/opensnitchd/rules/1 - Local Network 2: IPv6.json index 6948600..4cda9fb 100644 --- a/root/etc/opensnitchd/rules/1-Local Network (v6).json +++ b/root/etc/opensnitchd/rules/1 - Local Network 2: IPv6.json @@ -1,7 +1,7 @@ { - "created": "2021-02-14T10:42:24.423641366+01:00", - "updated": "2021-02-14T10:42:24.423678672+01:00", - "name": "1-Local Network (v6)", + "created": "2021-03-26T14:35:19.095504822+01:00", + "updated": "2021-03-26T14:35:19.095575256+01:00", + "name": "1 - Local Network 2: IPv6", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/1-Multicast.json b/root/etc/opensnitchd/rules/1 - Local Network 3: Multicast.json similarity index 60% rename from root/etc/opensnitchd/rules/1-Multicast.json rename to root/etc/opensnitchd/rules/1 - Local Network 3: Multicast.json index f8b818e..3816dae 100644 --- a/root/etc/opensnitchd/rules/1-Multicast.json +++ b/root/etc/opensnitchd/rules/1 - Local Network 3: Multicast.json @@ -1,7 +1,7 @@ { - "created": "2021-02-14T12:20:49.99614146+01:00", - "updated": "2021-02-14T12:20:49.996191714+01:00", - "name": "1-Multicast", + "created": "2021-03-26T14:35:34.624303764+01:00", + "updated": "2021-03-26T14:35:34.624381925+01:00", + "name": "1 - Local Network 3: Multicast", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/2-Cloudflare DNS.json b/root/etc/opensnitchd/rules/2 - DNS 1: CloudFlare.json similarity index 68% rename from root/etc/opensnitchd/rules/2-Cloudflare DNS.json rename to root/etc/opensnitchd/rules/2 - DNS 1: CloudFlare.json index afcabd6..0cbde82 100644 --- a/root/etc/opensnitchd/rules/2-Cloudflare DNS.json +++ b/root/etc/opensnitchd/rules/2 - DNS 1: CloudFlare.json @@ -1,7 +1,7 @@ { - "created": "2021-02-14T10:42:40.336067077+01:00", - "updated": "2021-02-14T10:42:40.336185036+01:00", - "name": "2-Cloudflare DNS", + "created": "2021-03-26T14:05:47.752157095+01:00", + "updated": "2021-03-26T14:05:47.752306682+01:00", + "name": "2 - DNS 1: CloudFlare", "enabled": true, "precedence": false, "action": "allow", @@ -10,7 +10,7 @@ "type": "list", "operand": "list", "sensitive": false, - "data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"udp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"53\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.ip\", \"data\": \"1.1.1.1\", \"sensitive\": false}]", + "data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"udp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"53\", \"sensitive\": false}, {\"type\": \"regexp\", \"operand\": \"dest.ip\", \"data\": \"(1\\\\.1\\\\.1\\\\.1)|(1\\\\.0\\\\.0\\\\.1)\", \"sensitive\": false}]", "list": [ { "type": "simple", @@ -27,10 +27,10 @@ "list": null }, { - "type": "simple", + "type": "regexp", "operand": "dest.ip", "sensitive": false, - "data": "1.1.1.1", + "data": "(1\\.1\\.1\\.1)|(1\\.0\\.0\\.1)", "list": null } ] diff --git a/root/etc/opensnitchd/rules/2-Cloudflare DNS (Fallback).json b/root/etc/opensnitchd/rules/2 - DNS 2: Local NameServer.json similarity index 79% rename from root/etc/opensnitchd/rules/2-Cloudflare DNS (Fallback).json rename to root/etc/opensnitchd/rules/2 - DNS 2: Local NameServer.json index 1557db6..ad66026 100644 --- a/root/etc/opensnitchd/rules/2-Cloudflare DNS (Fallback).json +++ b/root/etc/opensnitchd/rules/2 - DNS 2: Local NameServer.json @@ -1,7 +1,7 @@ { - "created": "2021-02-14T10:42:55.286542479+01:00", - "updated": "2021-02-14T10:42:55.2866656+01:00", - "name": "2-Cloudflare DNS (Fallback)", + "created": "2021-03-26T14:11:37.6695327+01:00", + "updated": "2021-03-26T14:11:37.669693753+01:00", + "name": "2 - DNS 2: Local NameServer", "enabled": true, "precedence": false, "action": "allow", @@ -10,7 +10,7 @@ "type": "list", "operand": "list", "sensitive": false, - "data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"udp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"53\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.ip\", \"data\": \"1.0.0.1\", \"sensitive\": false}]", + "data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"udp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"53\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.ip\", \"data\": \"192.168.0.1\", \"sensitive\": false}]", "list": [ { "type": "simple", @@ -30,7 +30,7 @@ "type": "simple", "operand": "dest.ip", "sensitive": false, - "data": "1.0.0.1", + "data": "192.168.0.1", "list": null } ] diff --git a/root/etc/opensnitchd/rules/7 - Clord (color management daemon).json b/root/etc/opensnitchd/rules/3 - Clord (color management daemon).json similarity index 86% rename from root/etc/opensnitchd/rules/7 - Clord (color management daemon).json rename to root/etc/opensnitchd/rules/3 - Clord (color management daemon).json index 42ff737..76729a8 100644 --- a/root/etc/opensnitchd/rules/7 - Clord (color management daemon).json +++ b/root/etc/opensnitchd/rules/3 - Clord (color management daemon).json @@ -1,7 +1,7 @@ { - "created": "2021-03-01T21:17:24.774744912+01:00", - "updated": "2021-03-01T21:17:24.774890683+01:00", - "name": "7 - Clord (color management daemon)", + "created": "2021-03-26T14:54:35.691185369+01:00", + "updated": "2021-03-26T14:54:35.691334733+01:00", + "name": "3 - Clord (color management daemon)", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/6-NetworkManager HTTPS.json b/root/etc/opensnitchd/rules/3 - NetworkManager HTTP+S.json similarity index 70% rename from root/etc/opensnitchd/rules/6-NetworkManager HTTPS.json rename to root/etc/opensnitchd/rules/3 - NetworkManager HTTP+S.json index 409e64e..711a5e4 100644 --- a/root/etc/opensnitchd/rules/6-NetworkManager HTTPS.json +++ b/root/etc/opensnitchd/rules/3 - NetworkManager HTTP+S.json @@ -1,7 +1,7 @@ { - "created": "2021-02-14T10:45:22.230494605+01:00", - "updated": "2021-02-14T10:45:22.230663913+01:00", - "name": "6-NetworkManager HTTPS", + "created": "2021-03-26T14:25:45.324185722+01:00", + "updated": "2021-03-26T14:25:45.324300946+01:00", + "name": "3 - NetworkManager HTTP+S", "enabled": true, "precedence": false, "action": "allow", @@ -10,7 +10,7 @@ "type": "list", "operand": "list", "sensitive": false, - "data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/NetworkManager\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}]", + "data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/NetworkManager\", \"sensitive\": false}, {\"type\": \"regexp\", \"operand\": \"dest.port\", \"data\": \"^(80|443)$\", \"sensitive\": false}]", "list": [ { "type": "simple", @@ -27,10 +27,10 @@ "list": null }, { - "type": "simple", + "type": "regexp", "operand": "dest.port", "sensitive": false, - "data": "443", + "data": "^(80|443)$", "list": null } ] diff --git a/root/etc/opensnitchd/rules/3 - Resolver: Avahi Daemon (Multicast DNS).json b/root/etc/opensnitchd/rules/3 - Resolver: Avahi Daemon (Multicast DNS).json new file mode 100644 index 0000000..83a5d2d --- /dev/null +++ b/root/etc/opensnitchd/rules/3 - Resolver: Avahi Daemon (Multicast DNS).json @@ -0,0 +1,45 @@ +{ + "created": "2021-03-26T14:32:52.844859434+01:00", + "updated": "2021-03-26T14:32:52.845014247+01:00", + "name": "3 - Resolver: Avahi Daemon (Multicast DNS)", + "enabled": true, + "precedence": false, + "action": "allow", + "duration": "always", + "operator": { + "type": "list", + "operand": "list", + "sensitive": false, + "data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"udp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/avahi-daemon\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"5353\", \"sensitive\": false}, {\"type\": \"regexp\", \"operand\": \"dest.ip\", \"data\": \"^(ff02::fb|224\\\\.0\\\\.0\\\\.251)$\", \"sensitive\": false}]", + "list": [ + { + "type": "simple", + "operand": "protocol", + "sensitive": false, + "data": "udp", + "list": null + }, + { + "type": "simple", + "operand": "process.path", + "sensitive": false, + "data": "/usr/bin/avahi-daemon", + "list": null + }, + { + "type": "simple", + "operand": "dest.port", + "sensitive": false, + "data": "5353", + "list": null + }, + { + "type": "regexp", + "operand": "dest.ip", + "sensitive": false, + "data": "^(ff02::fb|224\\.0\\.0\\.251)$", + "list": null + } + ] + } +} \ No newline at end of file diff --git a/root/etc/opensnitchd/rules/3 - Resolver: Systemd Resolved (Unicast DNS).json b/root/etc/opensnitchd/rules/3 - Resolver: Systemd Resolved (Unicast DNS).json new file mode 100644 index 0000000..ac41674 --- /dev/null +++ b/root/etc/opensnitchd/rules/3 - Resolver: Systemd Resolved (Unicast DNS).json @@ -0,0 +1,31 @@ +{ + "created": "2021-03-26T14:36:45.353178364+01:00", + "updated": "2021-03-26T14:36:45.353306158+01:00", + "name": "3 - Resolver: Systemd Resolved (Unicast DNS)", + "enabled": true, + "precedence": false, + "action": "allow", + "duration": "always", + "operator": { + "type": "list", + "operand": "list", + "sensitive": false, + "data": "[{\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/lib/systemd/systemd-resolved\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"53\", \"sensitive\": false}]", + "list": [ + { + "type": "simple", + "operand": "process.path", + "sensitive": false, + "data": "/usr/lib/systemd/systemd-resolved", + "list": null + }, + { + "type": "simple", + "operand": "dest.port", + "sensitive": false, + "data": "53", + "list": null + } + ] + } +} \ No newline at end of file diff --git a/root/etc/opensnitchd/rules/4-Time Synchronization.json b/root/etc/opensnitchd/rules/3 - Time Synchronization.json similarity index 84% rename from root/etc/opensnitchd/rules/4-Time Synchronization.json rename to root/etc/opensnitchd/rules/3 - Time Synchronization.json index a2d8f9d..33771fe 100644 --- a/root/etc/opensnitchd/rules/4-Time Synchronization.json +++ b/root/etc/opensnitchd/rules/3 - Time Synchronization.json @@ -1,7 +1,7 @@ { - "created": "2021-02-14T10:43:58.03246195+01:00", - "updated": "2021-02-14T10:43:58.032565951+01:00", - "name": "4-Time Synchronization", + "created": "2021-03-26T14:31:12.698421478+01:00", + "updated": "2021-03-26T14:31:12.698577981+01:00", + "name": "3 - Time Synchronization", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/7 - Arch-Audit HTTPS.json b/root/etc/opensnitchd/rules/4 - Arch-Audit HTTPS.json similarity index 89% rename from root/etc/opensnitchd/rules/7 - Arch-Audit HTTPS.json rename to root/etc/opensnitchd/rules/4 - Arch-Audit HTTPS.json index 23d778c..0dfe1cc 100644 --- a/root/etc/opensnitchd/rules/7 - Arch-Audit HTTPS.json +++ b/root/etc/opensnitchd/rules/4 - Arch-Audit HTTPS.json @@ -1,7 +1,7 @@ { - "created": "2021-03-01T21:24:11.869179084+01:00", - "updated": "2021-03-01T21:24:11.86932645+01:00", - "name": "7 - Arch-Audit HTTPS", + "created": "2021-03-26T14:53:45.452433311+01:00", + "updated": "2021-03-26T14:53:45.452584115+01:00", + "name": "4 - Arch-Audit HTTPS", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/7 - Curl HTTP+S.json b/root/etc/opensnitchd/rules/4 - Curl HTTP+S.json similarity index 87% rename from root/etc/opensnitchd/rules/7 - Curl HTTP+S.json rename to root/etc/opensnitchd/rules/4 - Curl HTTP+S.json index 50882a0..b6a4bbf 100644 --- a/root/etc/opensnitchd/rules/7 - Curl HTTP+S.json +++ b/root/etc/opensnitchd/rules/4 - Curl HTTP+S.json @@ -1,7 +1,7 @@ { - "created": "2021-03-01T21:22:42.115763864+01:00", - "updated": "2021-03-01T21:22:42.115902561+01:00", - "name": "7 - Curl HTTP+S", + "created": "2021-03-26T14:52:55.594720808+01:00", + "updated": "2021-03-26T14:52:55.594848089+01:00", + "name": "4 - Curl HTTP+S", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/7 - Git All.json b/root/etc/opensnitchd/rules/4 - Git All.json similarity index 86% rename from root/etc/opensnitchd/rules/7 - Git All.json rename to root/etc/opensnitchd/rules/4 - Git All.json index 8d6c1dd..77be7e5 100644 --- a/root/etc/opensnitchd/rules/7 - Git All.json +++ b/root/etc/opensnitchd/rules/4 - Git All.json @@ -1,7 +1,7 @@ { - "created": "2021-03-01T21:29:44.7636044+01:00", - "updated": "2021-03-01T21:29:44.76373548+01:00", - "name": "7 - Git All", + "created": "2021-03-26T14:53:18.08440206+01:00", + "updated": "2021-03-26T14:53:18.084531091+01:00", + "name": "4 - Git All", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/7 - Pacman HTTPS.json b/root/etc/opensnitchd/rules/4 - Pacman HTTPS.json similarity index 87% rename from root/etc/opensnitchd/rules/7 - Pacman HTTPS.json rename to root/etc/opensnitchd/rules/4 - Pacman HTTPS.json index be5501f..3272a4c 100644 --- a/root/etc/opensnitchd/rules/7 - Pacman HTTPS.json +++ b/root/etc/opensnitchd/rules/4 - Pacman HTTPS.json @@ -1,7 +1,7 @@ { - "created": "2021-03-01T21:16:30.742147712+01:00", - "updated": "2021-03-01T21:16:30.742295608+01:00", - "name": "7 - Pacman HTTPS", + "created": "2021-03-26T14:52:15.458656023+01:00", + "updated": "2021-03-26T14:52:15.458812681+01:00", + "name": "4 - Pacman HTTPS", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/7 - Pkgfile HTTPS.json b/root/etc/opensnitchd/rules/4 - Pkgfile HTTPS.json similarity index 87% rename from root/etc/opensnitchd/rules/7 - Pkgfile HTTPS.json rename to root/etc/opensnitchd/rules/4 - Pkgfile HTTPS.json index 422b594..20dd9d8 100644 --- a/root/etc/opensnitchd/rules/7 - Pkgfile HTTPS.json +++ b/root/etc/opensnitchd/rules/4 - Pkgfile HTTPS.json @@ -1,7 +1,7 @@ { - "created": "2021-03-01T21:24:00.24518723+01:00", - "updated": "2021-03-01T21:24:00.245307482+01:00", - "name": "7 - Pkgfile HTTPS", + "created": "2021-03-26T14:53:36.851205357+01:00", + "updated": "2021-03-26T14:53:36.851336407+01:00", + "name": "4 - Pkgfile HTTPS", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/7 - SSH.json b/root/etc/opensnitchd/rules/4 - SSH.json similarity index 63% rename from root/etc/opensnitchd/rules/7 - SSH.json rename to root/etc/opensnitchd/rules/4 - SSH.json index ba1b610..933c197 100644 --- a/root/etc/opensnitchd/rules/7 - SSH.json +++ b/root/etc/opensnitchd/rules/4 - SSH.json @@ -1,7 +1,7 @@ { - "created": "2021-03-01T21:19:30.12880345+01:00", - "updated": "2021-03-01T21:19:30.128933642+01:00", - "name": "7 - SSH", + "created": "2021-03-26T14:55:32.627718743+01:00", + "updated": "2021-03-26T14:55:32.627823529+01:00", + "name": "4 - SSH", "enabled": true, "precedence": false, "action": "allow", @@ -10,7 +10,7 @@ "type": "list", "operand": "list", "sensitive": false, - "data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/ssh\", \"sensitive\": false}, {\"type\": \"regexp\", \"operand\": \"dest.port\", \"data\": \"^(22|69)$\", \"sensitive\": false}]", + "data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/ssh\", \"sensitive\": false}]", "list": [ { "type": "simple", @@ -25,13 +25,6 @@ "sensitive": false, "data": "/usr/bin/ssh", "list": null - }, - { - "type": "regexp", - "operand": "dest.port", - "sensitive": false, - "data": "^(22|69)$", - "list": null } ] } diff --git a/root/etc/opensnitchd/rules/7 - Wget HTTP+S.json b/root/etc/opensnitchd/rules/4 - Wget HTTP+S.json similarity index 87% rename from root/etc/opensnitchd/rules/7 - Wget HTTP+S.json rename to root/etc/opensnitchd/rules/4 - Wget HTTP+S.json index d5245be..40a6e82 100644 --- a/root/etc/opensnitchd/rules/7 - Wget HTTP+S.json +++ b/root/etc/opensnitchd/rules/4 - Wget HTTP+S.json @@ -1,7 +1,7 @@ { - "created": "2021-03-01T21:22:51.723767504+01:00", - "updated": "2021-03-01T21:22:51.723947736+01:00", - "name": "7 - Wget HTTP+S", + "created": "2021-03-26T14:52:45.386672313+01:00", + "updated": "2021-03-26T14:52:45.386820625+01:00", + "name": "4 - Wget HTTP+S", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/7 - Yay (AUR) HTTPS.json b/root/etc/opensnitchd/rules/4 - Yay (AUR) HTTPS.json similarity index 87% rename from root/etc/opensnitchd/rules/7 - Yay (AUR) HTTPS.json rename to root/etc/opensnitchd/rules/4 - Yay (AUR) HTTPS.json index abce0c2..ce3847b 100644 --- a/root/etc/opensnitchd/rules/7 - Yay (AUR) HTTPS.json +++ b/root/etc/opensnitchd/rules/4 - Yay (AUR) HTTPS.json @@ -1,7 +1,7 @@ { - "created": "2021-03-01T21:16:57.02241505+01:00", - "updated": "2021-03-01T21:16:57.022570136+01:00", - "name": "7 - Yay (AUR) HTTPS", + "created": "2021-03-26T14:52:25.658707558+01:00", + "updated": "2021-03-26T14:52:25.658876726+01:00", + "name": "4 - Yay (AUR) HTTPS", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/KDE Init (Widgets) HTTPS.json b/root/etc/opensnitchd/rules/5 - KDE Init (Widgets) HTTPS.json similarity index 86% rename from root/etc/opensnitchd/rules/KDE Init (Widgets) HTTPS.json rename to root/etc/opensnitchd/rules/5 - KDE Init (Widgets) HTTPS.json index 58877e8..56421f3 100644 --- a/root/etc/opensnitchd/rules/KDE Init (Widgets) HTTPS.json +++ b/root/etc/opensnitchd/rules/5 - KDE Init (Widgets) HTTPS.json @@ -1,7 +1,7 @@ { - "created": "2021-02-14T00:22:26.791308073+01:00", - "updated": "2021-02-14T00:22:26.791423294+01:00", - "name": "KDE Init (Widgets) HTTPS", + "created": "2021-03-26T15:01:40.246561989+01:00", + "updated": "2021-03-26T15:01:40.24674061+01:00", + "name": "5 - KDE Init (Widgets) HTTPS", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/5 - KDE Telemetry.json b/root/etc/opensnitchd/rules/5 - KDE Telemetry.json new file mode 100644 index 0000000..f3a96df --- /dev/null +++ b/root/etc/opensnitchd/rules/5 - KDE Telemetry.json @@ -0,0 +1,38 @@ +{ + "created": "2021-03-26T14:58:25.517342143+01:00", + "updated": "2021-03-26T14:58:25.517486366+01:00", + "name": "5 - KDE Telemetry", + "enabled": true, + "precedence": false, + "action": "allow", + "duration": "always", + "operator": { + "type": "list", + "operand": "list", + "sensitive": false, + "data": "[{\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/plasmashell\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.host\", \"data\": \"telemetry.kde.org\", \"sensitive\": false}]", + "list": [ + { + "type": "simple", + "operand": "process.path", + "sensitive": false, + "data": "/usr/bin/plasmashell", + "list": null + }, + { + "type": "simple", + "operand": "dest.port", + "sensitive": false, + "data": "443", + "list": null + }, + { + "type": "simple", + "operand": "dest.host", + "sensitive": false, + "data": "telemetry.kde.org", + "list": null + } + ] + } +} \ No newline at end of file diff --git a/root/etc/opensnitchd/rules/KScreenLocker Greet HTTPS.json b/root/etc/opensnitchd/rules/5 - KScreenLocker Greet HTTPS.json similarity index 86% rename from root/etc/opensnitchd/rules/KScreenLocker Greet HTTPS.json rename to root/etc/opensnitchd/rules/5 - KScreenLocker Greet HTTPS.json index 28979cd..a909b5d 100644 --- a/root/etc/opensnitchd/rules/KScreenLocker Greet HTTPS.json +++ b/root/etc/opensnitchd/rules/5 - KScreenLocker Greet HTTPS.json @@ -1,7 +1,7 @@ { - "created": "2021-02-14T10:41:51.119263965+01:00", - "updated": "2021-02-14T10:41:51.119369128+01:00", - "name": "KScreenLocker Greet HTTPS", + "created": "2021-03-26T14:58:41.453127782+01:00", + "updated": "2021-03-26T14:58:41.453247154+01:00", + "name": "5 - KScreenLocker Greet HTTPS", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/Plasma Browser Integration HTTPS.json b/root/etc/opensnitchd/rules/5 - Plasma Browser Integration HTTPS.json similarity index 83% rename from root/etc/opensnitchd/rules/Plasma Browser Integration HTTPS.json rename to root/etc/opensnitchd/rules/5 - Plasma Browser Integration HTTPS.json index 63aee96..ac2460e 100644 --- a/root/etc/opensnitchd/rules/Plasma Browser Integration HTTPS.json +++ b/root/etc/opensnitchd/rules/5 - Plasma Browser Integration HTTPS.json @@ -1,7 +1,7 @@ { - "created": "2021-02-23T22:56:10.93718998+01:00", - "updated": "2021-02-23T22:56:10.937244167+01:00", - "name": "Plasma Browser Integration HTTPS", + "created": "2021-03-26T14:58:51.013216555+01:00", + "updated": "2021-03-26T14:58:51.013358956+01:00", + "name": "5 - Plasma Browser Integration HTTPS", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/VirtualBox ALL.json b/root/etc/opensnitchd/rules/5 - VirtualBox ALL.json similarity index 64% rename from root/etc/opensnitchd/rules/VirtualBox ALL.json rename to root/etc/opensnitchd/rules/5 - VirtualBox ALL.json index 7f8c669..e9db358 100644 --- a/root/etc/opensnitchd/rules/VirtualBox ALL.json +++ b/root/etc/opensnitchd/rules/5 - VirtualBox ALL.json @@ -1,7 +1,7 @@ { - "created": "2021-02-23T22:57:19.095106696+01:00", - "updated": "2021-02-23T22:57:19.095178679+01:00", - "name": "VirtualBox ALL", + "created": "2021-03-26T15:06:09.065865819+01:00", + "updated": "2021-03-26T15:06:09.065936078+01:00", + "name": "5 - VirtualBox ALL", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/Caprine 1 - UDP.json b/root/etc/opensnitchd/rules/6 - Caprine 1 - UDP.json similarity index 88% rename from root/etc/opensnitchd/rules/Caprine 1 - UDP.json rename to root/etc/opensnitchd/rules/6 - Caprine 1 - UDP.json index 55998db..18f321b 100644 --- a/root/etc/opensnitchd/rules/Caprine 1 - UDP.json +++ b/root/etc/opensnitchd/rules/6 - Caprine 1 - UDP.json @@ -1,7 +1,7 @@ { - "created": "2021-03-01T21:40:02.803609572+01:00", - "updated": "2021-03-01T21:40:02.803786783+01:00", - "name": "Caprine 1 - UDP", + "created": "2021-03-26T15:05:34.481391307+01:00", + "updated": "2021-03-26T15:05:34.481508413+01:00", + "name": "6 - Caprine 1 - UDP", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/Caprine 2 - IP Grabbers.json b/root/etc/opensnitchd/rules/6 - Caprine 2 - IP Grabbers.json similarity index 85% rename from root/etc/opensnitchd/rules/Caprine 2 - IP Grabbers.json rename to root/etc/opensnitchd/rules/6 - Caprine 2 - IP Grabbers.json index 076fd50..32d3f72 100644 --- a/root/etc/opensnitchd/rules/Caprine 2 - IP Grabbers.json +++ b/root/etc/opensnitchd/rules/6 - Caprine 2 - IP Grabbers.json @@ -1,7 +1,7 @@ { - "created": "2021-03-01T21:39:55.235940148+01:00", - "updated": "2021-03-01T21:39:55.236057227+01:00", - "name": "Caprine 2 - IP Grabbers", + "created": "2021-03-26T15:05:42.793872103+01:00", + "updated": "2021-03-26T15:05:42.793987628+01:00", + "name": "6 - Caprine 2 - IP Grabbers", "enabled": true, "precedence": true, "action": "deny", diff --git a/root/etc/opensnitchd/rules/Chromium 1 - HTTP+S.json b/root/etc/opensnitchd/rules/6 - Chromium 1 - HTTP+S.json similarity index 87% rename from root/etc/opensnitchd/rules/Chromium 1 - HTTP+S.json rename to root/etc/opensnitchd/rules/6 - Chromium 1 - HTTP+S.json index 925ddea..d270f74 100644 --- a/root/etc/opensnitchd/rules/Chromium 1 - HTTP+S.json +++ b/root/etc/opensnitchd/rules/6 - Chromium 1 - HTTP+S.json @@ -1,7 +1,7 @@ { - "created": "2021-03-01T21:41:41.212782195+01:00", - "updated": "2021-03-01T21:41:41.21289267+01:00", - "name": "Chromium 1 - HTTP+S", + "created": "2021-03-26T15:02:22.863576228+01:00", + "updated": "2021-03-26T15:02:22.863723433+01:00", + "name": "6 - Chromium 1 - HTTP+S", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/Chromium 2 - UDP.json b/root/etc/opensnitchd/rules/6 - Chromium 2 - UDP.json similarity index 84% rename from root/etc/opensnitchd/rules/Chromium 2 - UDP.json rename to root/etc/opensnitchd/rules/6 - Chromium 2 - UDP.json index 87c911e..078f65e 100644 --- a/root/etc/opensnitchd/rules/Chromium 2 - UDP.json +++ b/root/etc/opensnitchd/rules/6 - Chromium 2 - UDP.json @@ -1,7 +1,7 @@ { - "created": "2021-03-01T21:41:52.260963319+01:00", - "updated": "2021-03-01T21:41:52.261076398+01:00", - "name": "Chromium 2 - UDP", + "created": "2021-03-26T15:00:30.758958286+01:00", + "updated": "2021-03-26T15:00:30.759131117+01:00", + "name": "6 - Chromium 2 - UDP", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/Chromium 3 - Google DNS.json b/root/etc/opensnitchd/rules/6 - Chromium 3 - Google DNS.json similarity index 89% rename from root/etc/opensnitchd/rules/Chromium 3 - Google DNS.json rename to root/etc/opensnitchd/rules/6 - Chromium 3 - Google DNS.json index db5f909..331ef00 100644 --- a/root/etc/opensnitchd/rules/Chromium 3 - Google DNS.json +++ b/root/etc/opensnitchd/rules/6 - Chromium 3 - Google DNS.json @@ -1,7 +1,7 @@ { - "created": "2021-03-01T21:42:04.437447371+01:00", - "updated": "2021-03-01T21:42:04.437576729+01:00", - "name": "Chromium 3 - Google DNS", + "created": "2021-03-26T15:00:39.45302295+01:00", + "updated": "2021-03-26T15:00:39.453105125+01:00", + "name": "6 - Chromium 3 - Google DNS", "enabled": true, "precedence": true, "action": "deny", diff --git a/root/etc/opensnitchd/rules/Discord 1 - HTTP+S.json b/root/etc/opensnitchd/rules/6 - Discord 1 - HTTP+S.json similarity index 87% rename from root/etc/opensnitchd/rules/Discord 1 - HTTP+S.json rename to root/etc/opensnitchd/rules/6 - Discord 1 - HTTP+S.json index b57163c..dea5383 100644 --- a/root/etc/opensnitchd/rules/Discord 1 - HTTP+S.json +++ b/root/etc/opensnitchd/rules/6 - Discord 1 - HTTP+S.json @@ -1,7 +1,7 @@ { - "created": "2021-03-01T21:42:22.493603279+01:00", - "updated": "2021-03-01T21:42:22.493725964+01:00", - "name": "Discord 1 - HTTP+S", + "created": "2021-03-26T15:00:47.05534584+01:00", + "updated": "2021-03-26T15:00:47.055503114+01:00", + "name": "6 - Discord 1 - HTTP+S", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/Discord 2 - UDP.json b/root/etc/opensnitchd/rules/6 - Discord 2 - UDP.json similarity index 84% rename from root/etc/opensnitchd/rules/Discord 2 - UDP.json rename to root/etc/opensnitchd/rules/6 - Discord 2 - UDP.json index 0869127..554f710 100644 --- a/root/etc/opensnitchd/rules/Discord 2 - UDP.json +++ b/root/etc/opensnitchd/rules/6 - Discord 2 - UDP.json @@ -1,7 +1,7 @@ { - "created": "2021-03-01T21:42:31.061655729+01:00", - "updated": "2021-03-01T21:42:31.061769254+01:00", - "name": "Discord 2 - UDP", + "created": "2021-03-26T15:00:54.726404116+01:00", + "updated": "2021-03-26T15:00:54.726525934+01:00", + "name": "6 - Discord 2 - UDP", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/Electron HTTPS.json b/root/etc/opensnitchd/rules/6 - Electron HTTPS.json similarity index 87% rename from root/etc/opensnitchd/rules/Electron HTTPS.json rename to root/etc/opensnitchd/rules/6 - Electron HTTPS.json index 0f7e08e..f963c9e 100644 --- a/root/etc/opensnitchd/rules/Electron HTTPS.json +++ b/root/etc/opensnitchd/rules/6 - Electron HTTPS.json @@ -1,7 +1,7 @@ { - "created": "2021-02-19T00:24:20.370479504+01:00", - "updated": "2021-02-19T00:24:20.370634955+01:00", - "name": "Electron HTTPS", + "created": "2021-03-26T15:03:20.472154851+01:00", + "updated": "2021-03-26T15:03:20.472291079+01:00", + "name": "6 - Electron HTTPS", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/Firefox 1 - HTTP+S.json b/root/etc/opensnitchd/rules/6 - Firefox 1 - HTTP+S.json similarity index 87% rename from root/etc/opensnitchd/rules/Firefox 1 - HTTP+S.json rename to root/etc/opensnitchd/rules/6 - Firefox 1 - HTTP+S.json index 630123d..018f9f0 100644 --- a/root/etc/opensnitchd/rules/Firefox 1 - HTTP+S.json +++ b/root/etc/opensnitchd/rules/6 - Firefox 1 - HTTP+S.json @@ -1,7 +1,7 @@ { - "created": "2021-03-01T21:42:50.766044053+01:00", - "updated": "2021-03-01T21:42:50.766180097+01:00", - "name": "Firefox 1 - HTTP+S", + "created": "2021-03-26T15:01:03.878891592+01:00", + "updated": "2021-03-26T15:01:03.879007456+01:00", + "name": "6 - Firefox 1 - HTTP+S", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/Firefox 2 - UDP.json b/root/etc/opensnitchd/rules/6 - Firefox 2 - UDP.json similarity index 84% rename from root/etc/opensnitchd/rules/Firefox 2 - UDP.json rename to root/etc/opensnitchd/rules/6 - Firefox 2 - UDP.json index 2c678fe..9341f93 100644 --- a/root/etc/opensnitchd/rules/Firefox 2 - UDP.json +++ b/root/etc/opensnitchd/rules/6 - Firefox 2 - UDP.json @@ -1,7 +1,7 @@ { - "created": "2021-03-01T21:43:02.486433916+01:00", - "updated": "2021-03-01T21:43:02.486562939+01:00", - "name": "Firefox 2 - UDP", + "created": "2021-03-26T15:01:21.022762959+01:00", + "updated": "2021-03-26T15:01:21.022899201+01:00", + "name": "6 - Firefox 2 - UDP", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/Firefox 3 - Telemetry.json b/root/etc/opensnitchd/rules/6 - Firefox 3 - PingSender.json similarity index 57% rename from root/etc/opensnitchd/rules/Firefox 3 - Telemetry.json rename to root/etc/opensnitchd/rules/6 - Firefox 3 - PingSender.json index 2011533..d4d1644 100644 --- a/root/etc/opensnitchd/rules/Firefox 3 - Telemetry.json +++ b/root/etc/opensnitchd/rules/6 - Firefox 3 - PingSender.json @@ -1,10 +1,10 @@ { - "created": "2021-03-01T21:43:14.486480845+01:00", - "updated": "2021-03-01T21:43:14.486530002+01:00", - "name": "Firefox 3 - Telemetry", + "created": "2021-03-26T15:01:27.902723849+01:00", + "updated": "2021-03-26T15:01:27.902798768+01:00", + "name": "6 - Firefox 3 - PingSender", "enabled": true, "precedence": false, - "action": "deny", + "action": "allow", "duration": "always", "operator": { "type": "simple", diff --git a/root/etc/opensnitchd/rules/6 - Gimagereader HTTPS.json b/root/etc/opensnitchd/rules/6 - Gimagereader HTTPS.json new file mode 100644 index 0000000..412bc11 --- /dev/null +++ b/root/etc/opensnitchd/rules/6 - Gimagereader HTTPS.json @@ -0,0 +1,31 @@ +{ + "created": "2021-03-26T15:06:47.786430608+01:00", + "updated": "2021-03-26T15:06:47.786567338+01:00", + "name": "6 - Gimagereader HTTPS", + "enabled": true, + "precedence": false, + "action": "allow", + "duration": "always", + "operator": { + "type": "list", + "operand": "list", + "sensitive": false, + "data": "[{\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/gimagereader-qt5\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}]", + "list": [ + { + "type": "simple", + "operand": "process.path", + "sensitive": false, + "data": "/usr/bin/gimagereader-qt5", + "list": null + }, + { + "type": "simple", + "operand": "dest.port", + "sensitive": false, + "data": "443", + "list": null + } + ] + } +} \ No newline at end of file diff --git a/root/etc/opensnitchd/rules/3-Systemd Resolved.json b/root/etc/opensnitchd/rules/6 - Go (language).json similarity index 52% rename from root/etc/opensnitchd/rules/3-Systemd Resolved.json rename to root/etc/opensnitchd/rules/6 - Go (language).json index 19fae49..9f19806 100644 --- a/root/etc/opensnitchd/rules/3-Systemd Resolved.json +++ b/root/etc/opensnitchd/rules/6 - Go (language).json @@ -1,7 +1,7 @@ { - "created": "2021-02-14T10:43:46.04607091+01:00", - "updated": "2021-02-14T10:43:46.046110281+01:00", - "name": "3-Systemd Resolved", + "created": "2021-03-26T15:10:53.909451068+01:00", + "updated": "2021-03-26T15:10:53.90953488+01:00", + "name": "6 - Go (language)", "enabled": true, "precedence": false, "action": "allow", @@ -10,7 +10,7 @@ "type": "simple", "operand": "process.path", "sensitive": false, - "data": "/usr/lib/systemd/systemd-resolved", + "data": "/usr/lib/go/bin/go", "list": [] } } \ No newline at end of file diff --git a/root/etc/opensnitchd/rules/Python HTTP+S.json b/root/etc/opensnitchd/rules/6 - Python HTTP+S.json similarity index 87% rename from root/etc/opensnitchd/rules/Python HTTP+S.json rename to root/etc/opensnitchd/rules/6 - Python HTTP+S.json index 8ddd0a5..ff32ba9 100644 --- a/root/etc/opensnitchd/rules/Python HTTP+S.json +++ b/root/etc/opensnitchd/rules/6 - Python HTTP+S.json @@ -1,7 +1,7 @@ { - "created": "2021-03-01T21:23:27.597128697+01:00", - "updated": "2021-03-01T21:23:27.597317986+01:00", - "name": "Python HTTP+S", + "created": "2021-03-26T15:10:46.661735004+01:00", + "updated": "2021-03-26T15:10:46.66187107+01:00", + "name": "6 - Python HTTP+S", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/6 - QBitTorrent.json b/root/etc/opensnitchd/rules/6 - QBitTorrent.json new file mode 100644 index 0000000..3519de4 --- /dev/null +++ b/root/etc/opensnitchd/rules/6 - QBitTorrent.json @@ -0,0 +1,16 @@ +{ + "created": "2021-03-26T15:03:59.240296743+01:00", + "updated": "2021-03-26T15:03:59.240369823+01:00", + "name": "6 - QBitTorrent", + "enabled": true, + "precedence": false, + "action": "allow", + "duration": "always", + "operator": { + "type": "simple", + "operand": "process.path", + "sensitive": false, + "data": "/usr/bin/qbittorrent", + "list": [] + } +} \ No newline at end of file diff --git a/root/etc/opensnitchd/rules/Qalculate HTTPS.json b/root/etc/opensnitchd/rules/6 - Qalculate HTTPS.json similarity index 87% rename from root/etc/opensnitchd/rules/Qalculate HTTPS.json rename to root/etc/opensnitchd/rules/6 - Qalculate HTTPS.json index 0e4fc91..a5eb658 100644 --- a/root/etc/opensnitchd/rules/Qalculate HTTPS.json +++ b/root/etc/opensnitchd/rules/6 - Qalculate HTTPS.json @@ -1,7 +1,7 @@ { - "created": "2021-02-14T00:52:11.884513258+01:00", - "updated": "2021-02-14T00:52:11.884605842+01:00", - "name": "Qalculate HTTPS", + "created": "2021-03-26T15:03:51.080504273+01:00", + "updated": "2021-03-26T15:03:51.080636184+01:00", + "name": "6 - Qalculate HTTPS", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/Spotify 1 - needed.json b/root/etc/opensnitchd/rules/6 - Spotify 1 - needed.json similarity index 86% rename from root/etc/opensnitchd/rules/Spotify 1 - needed.json rename to root/etc/opensnitchd/rules/6 - Spotify 1 - needed.json index 69e017e..8250f82 100644 --- a/root/etc/opensnitchd/rules/Spotify 1 - needed.json +++ b/root/etc/opensnitchd/rules/6 - Spotify 1 - needed.json @@ -1,7 +1,7 @@ { - "created": "2021-03-09T20:20:26.84640618+01:00", - "updated": "2021-03-09T20:20:26.84654111+01:00", - "name": "Spotify 1 - needed", + "created": "2021-03-26T15:01:53.487069746+01:00", + "updated": "2021-03-26T15:01:53.487181823+01:00", + "name": "6 - Spotify 1 - needed", "enabled": true, "precedence": true, "action": "allow", diff --git a/root/etc/opensnitchd/rules/Spotify 2 - ads+telemetry.json b/root/etc/opensnitchd/rules/6 - Spotify 2 - ads+telemetry.json similarity index 61% rename from root/etc/opensnitchd/rules/Spotify 2 - ads+telemetry.json rename to root/etc/opensnitchd/rules/6 - Spotify 2 - ads+telemetry.json index 6df4da9..f944c44 100644 --- a/root/etc/opensnitchd/rules/Spotify 2 - ads+telemetry.json +++ b/root/etc/opensnitchd/rules/6 - Spotify 2 - ads+telemetry.json @@ -1,7 +1,7 @@ { - "created": "2021-03-01T21:37:06.224696669+01:00", - "updated": "2021-03-01T21:37:06.224763305+01:00", - "name": "Spotify 2 - ads+telemetry", + "created": "2021-03-26T15:02:02.343313434+01:00", + "updated": "2021-03-26T15:02:02.343390075+01:00", + "name": "6 - Spotify 2 - ads+telemetry", "enabled": true, "precedence": false, "action": "deny", diff --git a/root/etc/opensnitchd/rules/Spotify 3 - internal ads+telemetry.json b/root/etc/opensnitchd/rules/6 - Spotify 3 - internal ads+telemetry.json similarity index 86% rename from root/etc/opensnitchd/rules/Spotify 3 - internal ads+telemetry.json rename to root/etc/opensnitchd/rules/6 - Spotify 3 - internal ads+telemetry.json index 72bd50a..6121bb8 100644 --- a/root/etc/opensnitchd/rules/Spotify 3 - internal ads+telemetry.json +++ b/root/etc/opensnitchd/rules/6 - Spotify 3 - internal ads+telemetry.json @@ -1,8 +1,8 @@ { - "created": "2021-03-01T22:13:03.499849259+01:00", - "updated": "2021-03-01T22:13:03.499984082+01:00", - "name": "Spotify 3 - internal ads+telemetry", - "enabled": true, + "created": "2021-03-26T15:02:16.687208851+01:00", + "updated": "2021-03-26T15:02:16.687359725+01:00", + "name": "6 - Spotify 3 - internal ads+telemetry", + "enabled": false, "precedence": true, "action": "deny", "duration": "always", diff --git a/root/etc/opensnitchd/rules/Tor Browser ALL.json b/root/etc/opensnitchd/rules/6 - Tor Browser ALL.json similarity index 67% rename from root/etc/opensnitchd/rules/Tor Browser ALL.json rename to root/etc/opensnitchd/rules/6 - Tor Browser ALL.json index f025f73..a04c6ed 100644 --- a/root/etc/opensnitchd/rules/Tor Browser ALL.json +++ b/root/etc/opensnitchd/rules/6 - Tor Browser ALL.json @@ -1,7 +1,7 @@ { - "created": "2021-02-22T13:28:34.500529324+01:00", - "updated": "2021-02-22T13:28:34.500593302+01:00", - "name": "Tor Browser ALL", + "created": "2021-03-26T15:02:09.109657936+01:00", + "updated": "2021-03-26T15:02:09.109691483+01:00", + "name": "6 - Tor Browser ALL", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/Tor service.json b/root/etc/opensnitchd/rules/6 - Tor service.json similarity index 63% rename from root/etc/opensnitchd/rules/Tor service.json rename to root/etc/opensnitchd/rules/6 - Tor service.json index 03908c5..42e22d0 100644 --- a/root/etc/opensnitchd/rules/Tor service.json +++ b/root/etc/opensnitchd/rules/6 - Tor service.json @@ -1,7 +1,7 @@ { - "created": "2021-02-15T12:00:44.377009767+01:00", - "updated": "2021-02-15T12:00:44.377062795+01:00", - "name": "Tor service", + "created": "2021-03-26T15:04:19.984514998+01:00", + "updated": "2021-03-26T15:04:19.984594133+01:00", + "name": "6 - Tor service", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/VSCode HTTPS.json b/root/etc/opensnitchd/rules/6 - VSCode HTTPS.json similarity index 89% rename from root/etc/opensnitchd/rules/VSCode HTTPS.json rename to root/etc/opensnitchd/rules/6 - VSCode HTTPS.json index d9d2300..5f39566 100644 --- a/root/etc/opensnitchd/rules/VSCode HTTPS.json +++ b/root/etc/opensnitchd/rules/6 - VSCode HTTPS.json @@ -1,7 +1,7 @@ { - "created": "2021-03-01T21:34:00.214241703+01:00", - "updated": "2021-03-01T21:34:00.21437314+01:00", - "name": "VSCode HTTPS", + "created": "2021-03-26T15:04:13.753378423+01:00", + "updated": "2021-03-26T15:04:13.75353041+01:00", + "name": "6 - VSCode HTTPS", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/6 - Xsane (scanner software).json b/root/etc/opensnitchd/rules/6 - Xsane (scanner software).json new file mode 100644 index 0000000..dd744af --- /dev/null +++ b/root/etc/opensnitchd/rules/6 - Xsane (scanner software).json @@ -0,0 +1,38 @@ +{ + "created": "2021-03-26T15:07:51.203426947+01:00", + "updated": "2021-03-26T15:07:51.203586715+01:00", + "name": "6 - Xsane (scanner software)", + "enabled": true, + "precedence": false, + "action": "allow", + "duration": "always", + "operator": { + "type": "list", + "operand": "list", + "sensitive": false, + "data": "[{\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/xsane\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"161\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.ip\", \"data\": \"255.255.255.255\", \"sensitive\": false}]", + "list": [ + { + "type": "simple", + "operand": "process.path", + "sensitive": false, + "data": "/usr/bin/xsane", + "list": null + }, + { + "type": "simple", + "operand": "dest.port", + "sensitive": false, + "data": "161", + "list": null + }, + { + "type": "simple", + "operand": "dest.ip", + "sensitive": false, + "data": "255.255.255.255", + "list": null + } + ] + } +} \ No newline at end of file diff --git a/root/etc/opensnitchd/rules/Zoom 1 - needed.json b/root/etc/opensnitchd/rules/6 - Zoom 1: needed.json similarity index 87% rename from root/etc/opensnitchd/rules/Zoom 1 - needed.json rename to root/etc/opensnitchd/rules/6 - Zoom 1: needed.json index 16accb0..5aa4a60 100644 --- a/root/etc/opensnitchd/rules/Zoom 1 - needed.json +++ b/root/etc/opensnitchd/rules/6 - Zoom 1: needed.json @@ -1,7 +1,7 @@ { - "created": "2021-03-01T21:36:06.049386579+01:00", - "updated": "2021-03-01T21:36:06.049489329+01:00", - "name": "Zoom 1 - needed", + "created": "2021-03-26T15:07:34.123428308+01:00", + "updated": "2021-03-26T15:07:34.123557306+01:00", + "name": "6 - Zoom 1: needed", "enabled": true, "precedence": true, "action": "allow", diff --git a/root/etc/opensnitchd/rules/Zoom 2 - telemetry.json b/root/etc/opensnitchd/rules/6 - Zoom 2: telemetry.json similarity index 62% rename from root/etc/opensnitchd/rules/Zoom 2 - telemetry.json rename to root/etc/opensnitchd/rules/6 - Zoom 2: telemetry.json index a7922eb..fc4c293 100644 --- a/root/etc/opensnitchd/rules/Zoom 2 - telemetry.json +++ b/root/etc/opensnitchd/rules/6 - Zoom 2: telemetry.json @@ -1,7 +1,7 @@ { - "created": "2021-03-01T21:37:17.67293651+01:00", - "updated": "2021-03-01T21:37:17.672999662+01:00", - "name": "Zoom 2 - telemetry", + "created": "2021-03-26T15:07:42.402689917+01:00", + "updated": "2021-03-26T15:07:42.40277358+01:00", + "name": "6 - Zoom 2: telemetry", "enabled": true, "precedence": false, "action": "deny", diff --git a/root/etc/opensnitchd/rules/6-NetworkManager HTTP.json b/root/etc/opensnitchd/rules/6-NetworkManager HTTP.json deleted file mode 100644 index cb71cae..0000000 --- a/root/etc/opensnitchd/rules/6-NetworkManager HTTP.json +++ /dev/null @@ -1,38 +0,0 @@ -{ - "created": "2021-02-14T10:45:11.468167232+01:00", - "updated": "2021-02-14T10:45:11.468282083+01:00", - "name": "6-NetworkManager HTTP", - "enabled": true, - "precedence": false, - "action": "allow", - "duration": "always", - "operator": { - "type": "list", - "operand": "list", - "sensitive": false, - "data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/NetworkManager\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"80\", \"sensitive\": false}]", - "list": [ - { - "type": "simple", - "operand": "protocol", - "sensitive": false, - "data": "tcp", - "list": null - }, - { - "type": "simple", - "operand": "process.path", - "sensitive": false, - "data": "/usr/bin/NetworkManager", - "list": null - }, - { - "type": "simple", - "operand": "dest.port", - "sensitive": false, - "data": "80", - "list": null - } - ] - } -} \ No newline at end of file diff --git a/root/etc/opensnitchd/rules/7 - DownloadHelper HTTPS.json b/root/etc/opensnitchd/rules/7 - DownloadHelper HTTPS.json new file mode 100644 index 0000000..b4dc6e8 --- /dev/null +++ b/root/etc/opensnitchd/rules/7 - DownloadHelper HTTPS.json @@ -0,0 +1,38 @@ +{ + "created": "2021-03-26T15:06:58.026583665+01:00", + "updated": "2021-03-26T15:06:58.026700643+01:00", + "name": "7 - DownloadHelper HTTPS", + "enabled": true, + "precedence": false, + "action": "allow", + "duration": "always", + "operator": { + "type": "list", + "operand": "list", + "sensitive": false, + "data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/local/net.downloadhelper.coapp-1.6.1/bin/net.downloadhelper.coapp-linux-64\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}]", + "list": [ + { + "type": "simple", + "operand": "protocol", + "sensitive": false, + "data": "tcp", + "list": null + }, + { + "type": "simple", + "operand": "process.path", + "sensitive": false, + "data": "/usr/local/net.downloadhelper.coapp-1.6.1/bin/net.downloadhelper.coapp-linux-64", + "list": null + }, + { + "type": "simple", + "operand": "dest.port", + "sensitive": false, + "data": "443", + "list": null + } + ] + } +} \ No newline at end of file diff --git a/root/etc/opensnitchd/rules/Exodus HTTPS.json b/root/etc/opensnitchd/rules/7 - Exodus HTTPS.json similarity index 84% rename from root/etc/opensnitchd/rules/Exodus HTTPS.json rename to root/etc/opensnitchd/rules/7 - Exodus HTTPS.json index 5026a1c..3633513 100644 --- a/root/etc/opensnitchd/rules/Exodus HTTPS.json +++ b/root/etc/opensnitchd/rules/7 - Exodus HTTPS.json @@ -1,7 +1,7 @@ { - "created": "2021-02-14T11:54:55.161311241+01:00", - "updated": "2021-02-14T11:54:55.161438905+01:00", - "name": "Exodus HTTPS", + "created": "2021-03-26T15:06:00.313939576+01:00", + "updated": "2021-03-26T15:06:00.314088658+01:00", + "name": "7 - Exodus HTTPS", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/7 - Google Remote Desktop (Start).json b/root/etc/opensnitchd/rules/7 - Google Remote Desktop (Start).json new file mode 100644 index 0000000..0e1a666 --- /dev/null +++ b/root/etc/opensnitchd/rules/7 - Google Remote Desktop (Start).json @@ -0,0 +1,31 @@ +{ + "created": "2021-03-26T15:08:32.002388702+01:00", + "updated": "2021-03-26T15:08:32.002444202+01:00", + "name": "7 - Google Remote Desktop (Start)", + "enabled": true, + "precedence": false, + "action": "allow", + "duration": "always", + "operator": { + "type": "list", + "operand": "list", + "sensitive": false, + "data": "[{\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/opt/google/chrome-remote-desktop/start-host\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}]", + "list": [ + { + "type": "simple", + "operand": "process.path", + "sensitive": false, + "data": "/opt/google/chrome-remote-desktop/start-host", + "list": null + }, + { + "type": "simple", + "operand": "dest.port", + "sensitive": false, + "data": "443", + "list": null + } + ] + } +} \ No newline at end of file diff --git a/root/etc/opensnitchd/rules/7 - Google Remote Desktop (host).json b/root/etc/opensnitchd/rules/7 - Google Remote Desktop (host).json new file mode 100644 index 0000000..8ad6c60 --- /dev/null +++ b/root/etc/opensnitchd/rules/7 - Google Remote Desktop (host).json @@ -0,0 +1,31 @@ +{ + "created": "2021-03-26T15:08:40.676085602+01:00", + "updated": "2021-03-26T15:08:40.676199845+01:00", + "name": "7 - Google Remote Desktop (host)", + "enabled": true, + "precedence": false, + "action": "allow", + "duration": "always", + "operator": { + "type": "list", + "operand": "list", + "sensitive": false, + "data": "[{\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/opt/google/chrome-remote-desktop/chrome-remote-desktop-host\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"3478\", \"sensitive\": false}]", + "list": [ + { + "type": "simple", + "operand": "process.path", + "sensitive": false, + "data": "/opt/google/chrome-remote-desktop/chrome-remote-desktop-host", + "list": null + }, + { + "type": "simple", + "operand": "dest.port", + "sensitive": false, + "data": "3478", + "list": null + } + ] + } +} \ No newline at end of file diff --git a/root/etc/opensnitchd/rules/7 - Google remote desktop host HTTPS.json b/root/etc/opensnitchd/rules/7 - Google remote desktop host HTTPS.json new file mode 100644 index 0000000..a869318 --- /dev/null +++ b/root/etc/opensnitchd/rules/7 - Google remote desktop host HTTPS.json @@ -0,0 +1,31 @@ +{ + "created": "2021-03-26T15:08:48.779949158+01:00", + "updated": "2021-03-26T15:08:48.78007234+01:00", + "name": "7 - Google remote desktop host HTTPS", + "enabled": false, + "precedence": false, + "action": "allow", + "duration": "always", + "operator": { + "type": "list", + "operand": "list", + "sensitive": false, + "data": "[{\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/opt/google/chrome-remote-desktop/chrome-remote-desktop-host\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}]", + "list": [ + { + "type": "simple", + "operand": "process.path", + "sensitive": false, + "data": "/opt/google/chrome-remote-desktop/chrome-remote-desktop-host", + "list": null + }, + { + "type": "simple", + "operand": "dest.port", + "sensitive": false, + "data": "443", + "list": null + } + ] + } +} \ No newline at end of file diff --git a/root/etc/opensnitchd/rules/OBS.json b/root/etc/opensnitchd/rules/7 - OBS.json similarity index 90% rename from root/etc/opensnitchd/rules/OBS.json rename to root/etc/opensnitchd/rules/7 - OBS.json index ce47b8e..6d6889e 100644 --- a/root/etc/opensnitchd/rules/OBS.json +++ b/root/etc/opensnitchd/rules/7 - OBS.json @@ -1,7 +1,7 @@ { - "created": "2021-03-09T21:36:39.088161018+01:00", - "updated": "2021-03-09T21:36:39.088329487+01:00", - "name": "OBS", + "created": "2021-03-26T15:06:19.416884298+01:00", + "updated": "2021-03-26T15:06:19.416964918+01:00", + "name": "7 - OBS", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/Portmaster ALL.json b/root/etc/opensnitchd/rules/7 - Portmaster ALL.json similarity index 64% rename from root/etc/opensnitchd/rules/Portmaster ALL.json rename to root/etc/opensnitchd/rules/7 - Portmaster ALL.json index 831272e..09ce8d3 100644 --- a/root/etc/opensnitchd/rules/Portmaster ALL.json +++ b/root/etc/opensnitchd/rules/7 - Portmaster ALL.json @@ -1,7 +1,7 @@ { - "created": "2021-03-09T21:33:24.507475085+01:00", - "updated": "2021-03-09T21:33:24.507540494+01:00", - "name": "Portmaster ALL", + "created": "2021-03-26T15:09:05.172414932+01:00", + "updated": "2021-03-26T15:09:05.172493217+01:00", + "name": "7 - Portmaster ALL", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/Postgres UDP.json b/root/etc/opensnitchd/rules/7 - Postgres UDP.json similarity index 84% rename from root/etc/opensnitchd/rules/Postgres UDP.json rename to root/etc/opensnitchd/rules/7 - Postgres UDP.json index 258ba2d..7e5ada7 100644 --- a/root/etc/opensnitchd/rules/Postgres UDP.json +++ b/root/etc/opensnitchd/rules/7 - Postgres UDP.json @@ -1,7 +1,7 @@ { - "created": "2021-02-14T11:01:10.596780435+01:00", - "updated": "2021-02-14T11:01:10.596842776+01:00", - "name": "Postgres UDP", + "created": "2021-03-26T15:07:12.074594056+01:00", + "updated": "2021-03-26T15:07:12.074724626+01:00", + "name": "7 - Postgres UDP", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/Postman.json b/root/etc/opensnitchd/rules/7 - Postman.json similarity index 65% rename from root/etc/opensnitchd/rules/Postman.json rename to root/etc/opensnitchd/rules/7 - Postman.json index 0f5844a..503c4dc 100644 --- a/root/etc/opensnitchd/rules/Postman.json +++ b/root/etc/opensnitchd/rules/7 - Postman.json @@ -1,7 +1,7 @@ { - "created": "2021-02-14T12:14:10.502846179+01:00", - "updated": "2021-02-14T12:14:10.502884251+01:00", - "name": "Postman", + "created": "2021-03-26T15:07:20.01066125+01:00", + "updated": "2021-03-26T15:07:20.010747563+01:00", + "name": "7 - Postman", "enabled": true, "precedence": false, "action": "allow", diff --git a/root/etc/opensnitchd/rules/DownloadHelper HTTPS.json b/root/etc/opensnitchd/rules/DownloadHelper HTTPS.json deleted file mode 100644 index 26f30b9..0000000 --- a/root/etc/opensnitchd/rules/DownloadHelper HTTPS.json +++ /dev/null @@ -1,38 +0,0 @@ -{ - "created": "2021-03-01T21:13:17.146974819+01:00", - "updated": "2021-03-01T21:13:17.14711836+01:00", - "name": "DownloadHelper HTTPS", - "enabled": true, - "precedence": false, - "action": "allow", - "duration": "always", - "operator": { - "type": "list", - "operand": "list", - "sensitive": false, - "data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/home/itsdrike/net.downloadhelper.coapp-1.6.0/bin/net.downloadhelper.coapp-linux-64\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}]", - "list": [ - { - "type": "simple", - "operand": "protocol", - "sensitive": false, - "data": "tcp", - "list": null - }, - { - "type": "simple", - "operand": "process.path", - "sensitive": false, - "data": "/home/itsdrike/net.downloadhelper.coapp-1.6.0/bin/net.downloadhelper.coapp-linux-64", - "list": null - }, - { - "type": "simple", - "operand": "dest.port", - "sensitive": false, - "data": "443", - "list": null - } - ] - } -} \ No newline at end of file